The RS A scheme capitalizes on the relative ease of creating a composite mmiber 
from the product of two prime numbers whereas the attempt to factor the composite 
number into its constituent primes is difficult. The RSA scheme uses a public key E 
comprising a pair of positive integers n and e, where n is a composite number of the form 

n=p-q (1) 
where p and q are different prime numbers, and e is a number relatively prime to (p-1) 
and (q-1); that is, e is relatively prime to (p-1) or (q-1) if e has no factors in common with 
either of them. Importantly, the sender has access to n and e, but not to p and q. The 
message M is a number representative of a message to be transmitted wherein 

0<M<n-\. (2) 
The sender enciphers M to create ciphertext C by coniputing the exponential 

[C=M'(mod n)] feMWd n\ (3) 

Replace the paragraph beginning at col 2, line 19 with the following: 

The recipient of the ciphertext C retrieves the message M using a (private) 

decoding key D, comprising a pair of positive integers d and n, employing the relation 
[M=C'' (mod «)] M^C^(mod (4) 

As used in (4), above, d is a multiplicative inverse of 

e(mod(lcm((p-l), (^-1)))) (5) 

so that 

[p•r^=Urx^c^A(\c.m((p•\Y r?-nW] e-d^ l(mod(lcm(fa-lV (aAm (6) 
where lcm((p-l), (q-1)) is the least common multiple of numbers p-1 and q-1. Most 
commercial implementations of RSA employ a different, although equivalent, 
relationship for obtaining d: 

{d=e^ mod(p-l) (^-1)] mod((p-lV(a-n) . (7) 
This alternate relationship simplifies computer processing. 

Replace the paragraph beginning at col 3, line 23 with the following: 

It is still another object of this invention to provide a system and method for 
implementing an RSA scheme in which the [components] factors of n do not increase in 
length as n increases in length. 
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Replace the paragraph beginning at col 3, line 27 with the following: 

It is still another object to provide a system and method for utilizing multiple 
(more than two), distinct prime number [components] factors to create n. 
Replace the paragraph beginning at col 3, line 36 with the following: 

The present invention discloses a method and apparatus for increasing the 
computational speed of RSA and related public key schemes by focusing on a neglected 
area of computation inefficiency. Instead of n=p q, as is universal in the prior art, the 
present invention discloses a method and apparatus wherein n is developed from three or 
more distinct random prime numbers; i.e., n=prp2 . .-pk, where k is an integer greater 
than 2 and pi, p2,. . . Pk are sufficiently large distinct random primes. Preferably, 
"sufficiently large primes" are prime numbers that are numbers approximately 150 digits 
long or larger. The advantages of the invention over the prior art should be immediately 
apparent to those skilled in this art. If, as in the prior art, p and q are each on the order of, 
say, 150 digits long, then n will be on the order of 300 digits long. However, three primes 
pi, p2 and p3 employed in accordance with the present invention can each be on the order 
of 100 digits long and still result in n being 300 digits long. Finding and verifying 3 
distinct primes, each 100 digits long, requires significantly . fewer computational cycles 
than finding and verifying 2 primes each 1 50 digits long. ^ 

Replace the paragraph beginning at col 3, line 56 with the following: 

The commercial need for longer and longer primes shows no evidence of slowing; 
aheady there are projected requirements for n of about 600 digits long to forestall 
incremental improvements in factoring techniques and the ever faster computers available 
to break ciphertext. The invention, allowing 4 primes each about 150 digits long to obtain 
a 600 digit n, instead of two primes about [350] 300 digits long, results in a marked 
improvement in computer performance. For, not only are primes that are 150 digits in 
size easier to find and verify than ones on the order of [350] 300 digits, but by applying 
techniques the inventors derive fi-om the Chinese Remainder Theorem (CRT), public key 
cryptography calculations for encryption and decryption are completed much faster-even 
if performed serially on a single processor system. However, the inventors' techniques are 
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particularly adapted to [be] advantageously apply [enable] RSA public key cryptographic 
operations to parallel computer processing. 

Replace the paragraph beginning at col 4, line 6 with the following: 

The present invention is capable of [using] extending the RSA scheme to perform 
encryption and decryption operation using a large (many digit) n much faster than 
heretofore possible. Other advantages of the invention include its employment for 
decryption without the need to revise the RSA public key encryption transformation 
scheme currently in use on thousands of large and small computers. 

Replace the paragraph beginning at col 4, line 13 with the following: 

A key assumption of the present invention is that n, composed of 3 or more 
sufficiently large distinct prime numbers, is no easier (or not very much easier) to factor 
than the prior art, two prime number n. The assumption is based on the observation that 
there is no indication in the prior art literature that it is "easy" to factor a product 
consisting of more than two sufficiently large, distinct prime numbers. This assumption 
may be justified given the continued effort (and failure) among experts to find a way 
"easily" to break large [component] composite numbers into their large prime factors. 
This assumption is similar, in the inventors* view, to the assumption underlying the entire 
field of public key cryptography that factoring composite numbers made up of two 
distinct primes is not "easy." That is, the entire field of public key cryptography is based 
not on mathematical proof, but on the assumption that the empirical evidence of failed 
sustained efforts to find a way systematically to solve NP problems in polynomial time 
indicates that these problems truly are "difficult." 

Replace the paragraph beginning at col 4, line 32 with the following: 

The invention is preferably implemented in a system that employs parallel 
operations to perform the encryption, decryption operations required by the RSA scheme. 
Thus, there is also disclosed a cryptosystem that includes a central processor xrnit (CPU) 
coupled to a number of exponentiator elements. The exponentiator elements are special 
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purpose arithmetic units designed and structured to be provided message data M, an 
encryption key e, and a number n (where [n=pi *P2 * . . - pk] n= vy vi ^ . . .-r^ . k being 
greater than 2) and return ciphertext C according to the relationship, 

[C=M^ (mod(n))] C^M' (mod n\ 
Replace the paragraph beginning at col 4, line 45 with the following: 

Altematively, the exponentiator elements may be provided the ciphertext C, a 
decryption (private) key d and n to return M according to the relationship, 

[M-C' fmodfW;;] M= (mod n) 

Replace the paragraph beginning at col 4, line 50 with the following: 

According to this decryption aspect of the invention, the CPU receives a task, 
such as the requirement to decrypt [cyphertext] ciphertext data C. The CPU will also be 
provided, or have available, a [public] private key [e] d and n, and the factors of n (pi, p2, 
. , , Pa). The CPU breaks the [encryption] decryption task down into a number of sub- 
tasks, and delivers the sub-tasks to the exponentiator elements. [When the] The results of 
the sub-tasks are returned by the exponentiator elements to the CPU which [will], using a 
form of the CRT, combines the results to obtain the message data M. An encryption task 
may be performed essentially in the same maimer by the CPU and its use of the 
exponentiator elements. However, usually the factors of n are not available to the sender 
(encryptor), only the public key, e and n, so that no sub-tasks are created. 

Before the paragraph beginning at col 5, line 52, insert the following paragraph: 

Alternative! V, a message data M can be encoded with the private kev to a signed 

message data Mg using a relationship of the form 
M, =M''(modw), 

The message data M can be reproduce from the signed message data Mg by decoding the 
signed data with the public key, using a relationship of the form 

M=M/(mod/i), 



Replace the paragraph beginning at col 5, line 30 with the following: 
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According to the present invention, the public key portion e is picked. Then, three 
or more random large, distinct prime numbers, pi, p2, . . . , Pk are developed and checked 
to ensure that each (pj-l) is relatively prime to e. Preferably, the prime numbers are of 
equal length. Then, the product [n=pi, P2, . . . , pk] w= pypj- . . . pv is computed. 
Replace the paragraph beginning at col 5, line 36 with the following: 

Finally, the decryption [key] exponent , d, is established by the relationship: 

[d-^e^ mod ((pi -1) (p2 -1) • • • (Pk -1))] e^ mod -IVfp. -IV . . Aw - 
\)\ or equivalentlv 

rf= e^ mod flcmffa i -W (v-y -l\ , . Aw -1))) 

Replace the paragraph beginning at col 5, line 41 with the following: 

The message data, M is encrypted to ciphertext C using the relationship of (3), 
above, i.e., 

[C^M^ mod C= (mod n^ 

Replace the paragraph beginning at col 5, line 46 with the following: 

To decrypt the ciphertext, C, the relationship of [(3)] £4), above, is used: 
[M=C^ mod n] Tl^^l^iiodjO 
where n and d are those values identified above. 

Replace the paragraph beginning at col 5, line 52 with the following: 

Using the present invention involving three primes to develop the product n, RSA 
encryption and decryption time can be substantially less than an RSA scheme using two 
primes by dividing the encryption or decryption task into sub-tasks, one sub-task for each 
distinct prime. (However, breaking the encryption or decryption into subtasks requires 
knowledge of the factors of n. This knowledge is not usually available to anyone except 
the owner of the key, so the encryption process can be accelerated only in special cases, 
such as encryption for local storage. A system encrypting data for another user performs 
the encryption process according to (3), independent of the number of factors of n. 
Decryption, on the other hand, is performed by the owner of a key, so the factors of n are 
generally known and can be used to accelerate the process.) For example, assume that 
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three distinct primes, pi, P2, and p3, are used to develop the product n. Thus, decryption of 
the ciphertext, C, using the relationship 

[M=C^(mod n)] M^CUmod n) 
is used to develop the decryption sub-tasks: 

[Ml =Cx'^' mod px] Mi=C/Vmodpi) 

[M2 ==C2^' mod P2] M2.= c^LimAm} 

[M3 ^C3^' mod p3] A4=J&^L(mod£3) 

where 

[Ci =Cmod p\:] Ci^= C (mod v^) : 

[C2 =Cmod pr,] Ci^ C (mod vt) : 

[C3 =Cmod p3 ;] Q = C (mod m) : 

[di =Jmod (pi -1)] d\ = d (mod (p ^ _ -D) : 

{di =c/mod (p2 -1)] d (mod (p? -D) : and 

[c/3 =t/mod (p3 -1)] ^2 = ^ (mod (p^ -UV 

Replace the paragraph beginning at coL 6, line 24 with the following: 

The results of each sub-task. Mi, M2, and M3 can be combined to produce the 
plaintext, M, by a number of techniques. However, it is found that they can most 
expeditiously be combined by a form of the Chinese Remainder Theorem (CRT) using, 
preferably, a recursive scheme. Generally, the plaintext M is obtained from the 
combination of the individual sub-tasks by the following relationship: 

Y. = Y. A MiM; -Y^a ) (wC^ (mod v?i) (mod pAV w (mod n) [Yt ^Yi.x +[(M -Yt. 
1) (w,-'' mod /?/)mod Pi\'Wi mod «] 

where [i >2] 2< i <k where k is the number of prime factors of n, and 
M^Yi,Yx^Cuandwr\\ Pj 

j<i 

Encryption is performed in much the same manner as that used to obtain the plaintext M, 
provided (as noted above) the factors of n are available. Thus, the relationship 
[C=M' (mod n)] C=M" (mod n\ 
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can be broken down into the three sub-tasks, 

[Ci ^Mx' modpi] C, =M;*(modpi), 

[Ci =^2^ mod p2] C2 = M^"' (mod ) _and 

[Cs ^Mi' mod 775] C3 = M^' (mod /?3 ) , 

where 

[Ml =M(modpi)] Mi.^i£j(mod£i), 
[M2 =M(mod /?2)] M2 = M(mod vi\ 
[M3 =M(mod /?3)] M2 = M(mod v%) ^ 
\e\ =emod (pi -1)] ex _^e mod (z?i -1) . 
[62 =emod (p2 -1)] g2 = ^^Q^ 
[^3 =emod (p3 -1)] e3_=ejnodj[g3_JjL 

Replace the paragraph beginning at col 6, line 65 with the following: 

In generalized form, the ciphertext C (i.e., [decrypted] encrypted message M) can 
be obtained by [the same summation] a recursive scheme as identified above to obtain the 
ciphertext C from its contiguous constituent sub-tasks Q. 

Replace the paragraph beginning at col 7, line 1 with the following: 

Preferably, the recursive CRT method described above is used to obtain either the 
ciphertext[,] C[,] or the deciphered plaintext (message) M due to its speed. However, 
there may be [occasions] implementations when it is beneficial to use a non-recursive 
technique in which case the following relationships are used: 

k * 
M= M ^^i^ ^^Qd pAV w (mod n^ [M = Mi {wf^ modpO w/ mod 

"] 

where 

{Wi = n Pj\ m^Yl 
k is the number (3 or more) of distinct primes chosen to develop the product n. 
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Replace the paragraph beginning at col. 7, line 1 7 with the following: 

Thus, for example above (k=3), M is constructed from the retumed sub-task 
values Ml, M2, M3 by the relationship 

[M=Mi {w\^ mod p\) w\ mod/w+Mi {w{^ mod pi) wi mod n + 

M3 {w{^ mod pi) w^ mod w] M=M Aw {^ (mod V ] )\ w y _ (mod 

H- Ml {w{^ (mod p^'tV wi (mod n) 

+ Ml (wi^ (mod p^'^V (mod 

where 

wi =jE72 J^3, W2 =pi P3, and wi =p\ p2. 

Replace the paragraph beginning at col 7, line 52 with the following: 

The I/O bus 30 communicatively connects the CPU to a nimiber of exponentiator 
elements [32a, 32b, and 32.] 32a. 32b and 32c . Shown here are three exponentiator 
elements, although as illustrated by the "other" exponentiators [32n]32n, additional 
exponentiator elements can be added. Each exponentiator element is a state machine 
controlled arithmetic circuit structured specifically to implement the relationship 
described above. Thus, for example, the exponentiator 32a would be provided the values 
Ml, ei, and Pi[, n] to develop Ci. Similarly, the exponentiator circuits 32b and 32c 
develop C2 and C3 from corresponding subtask values M2, e2, [P2]E2, M3, 63, and [PslPi. 

Replace the paragraph beginning at col 8, line 1 with the following: 

In order to ensure a secure environment, it is preferable that the cryptosystem 10 
meet the Federal Information [Protection System] Processing Standard (FIPS) 140-1 level 
3. Accordingly, the elements that make up the CPU 14 would be implemented in a design 
that will be secure from external probing of the circuit. However, information 
communicated on the I/O bus 30 between the CPU 14 and the exponentiator circuits 32 
(and external memory 34-if present) is exposed. Consequently, to maintain the security 
of that information, it is first encrypted by the DES unit 24 before it is placed on the I/O 
bus 30 by the CPU 14. The exponentiator circuits 32, as well as the external memory 34, 
will also include similar DES units to decrypt information received from the CPU, and 
later to encrypt information retumed to the CPU 14. 
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Replace the paragraph beginning at col. 8, line 62 with the following: 

In similar fashion, information is conveyed to or retrieved from the exponentiators 
32 by the processor 20 by write or read operations at addresses within the address range 
44. Consequently, writes to the exponentiators 32 will use the DES unit 24 to encrypt the 
information. When that (encrypted) information is received by the exponentiators 32, it is 
decrypted by on-board DES units (of each exponentiator 32). The result[s] of the task 
performed by the exponentiator 32 is then encrypted by the exponentiator's on-board 
DES unit, retrieved by the processor 20 in encrypted form and then decrypted by the DES 
unit 24. 

Replace the paragraph beginning at col. 9, line 24 with the following: 

Assume, for the purpose of the remainder of this discussion, that the 
encryption/decryption tasks performed by the cryptosystem 10, using the present 
invention, employs only three distinct primes, pi, p2, p3. The processor 20 will develop 
the sub tasks identified above, using M, e, pi p2, p3 Thus, for example, if the 
exponentiator 32a were assigned the sub-task of developing Ci, the processor would 
develop the values Mi[,] and ei[, and (pi -1)] and deliver [units] (write) these values, with 
[n]pi, to the exponentiator 32a. Similar values will be developed by the processor 20 for 
the sub-tasks that will be delivered to the exponentiators 32b and 32c. 

Replace the paragraph beginning at col. 10. line 15 with the following: 

Alternatively, the [post]host-system 50 may desire to deliver, via the 
commvinication medium 60, an encrypted communication to one of the stations 64. If the 
communication is to be encrypted by the DES scheme, with the DES key encrypted by 
the RSA scheme, the host system would encrypt the communication, forward the DES 
key to one of the cryptosystems 10 for encryption via the RSA scheme. When the 
encrypted DES key is received back from the cryptosystem 10, the host system can then 
deliver to one or more of the stations 64 the encrypted message. 

Replace the paragraph beginning at col. 10, line 25 with the following: 
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Of course, the host system 50 and the stations 64 will be using the RSA scheme of 
public key encryption/decryption. Encrypted communications from the stations 64 to the 
host system 50 require that the stations 64 have access to the public key [E (E, N)] E=(e. 
n) while the host system maintains the private key [D (D, N,] D=(d, nY and the constituent 
primes, pu P2, • • • > Pk). Conversely, for secure communication from the host system 50 to 
one or more of the stations 64, the host system would retain a public key E' for each 
station 64, while the stations retain the corresponding private keys [E*] D|. 

Replace the paragraph beginning at col 10, line 35 with the following: 

Other techniques for encrypting the communication could used. For example, the 
communication could be entirely encrypted by the RSA scheme. If, however, the 
message to be communicated [ion] is represented bv a numerical value greater than n-1, it 
will need to be broken up into blocks size M where 
[0<M<N'l] 0<M<n'\ . 



In the Claims 

Without prejudice or surrender of any subject matter, cancel claim 8, amend claims 1-7 
and 9-13 (following the format of the claims as presented herein, including insertion of new lines 
and indentations where applicable), and add new claims 14-61, all of the changes to be made 
vis-a-vis the U.S. Patent 5,848,159, as follows: 

1. (Twice Amended) A method for [establishing cryptographic] communications of a message 
crvptographicallv processed with RSA fRivest. Shamir & Adleman) public kev encryption. 
comprising the steps of: 

developing k distinct random prime numbers pn pi p^- where k is an integer greater than 2: 

providing a number e relatively prime to (p ii -1 V(p7 -IV. . .-(pk-l); 
providing a composite number n equaling the product P i ^ p?- -Pk: 
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receiving a ciphertext word signal C which is formed by encoding a plaintext message word 
signal M to a ciphertext word signal C, where M corresponds to a number representative 
of [a] the message and 
0<M<n'\, 

[n being a composite number formed from the product of prP2-. . . .-pk where k is an 
integer greater than 2, pi, p2, . . . Pk are distinct prime numbers, and] where C is a number 
representative of an encoded form of the plaintext message word signal M such that 
C= (mod n\ and where e is associated with an intended recipient of the ciphertext 
word signal C: and [, wherein said encoding step comprises the step of: 
transforming said message word signal M to said ciphertext word signal C whereby 
C=M^ (mod n) 

where e is a number relatively prime to (pi -l)-(p2 -1)] 
deciphering the received ciphertext word signal C at the intended recipient hav ing available to it 
the k distinct random prime numbers p^. p?. ■ ■ * pv - 

2. (Twice Amended) The method according to claim 1, [comprising the further step of:] 
wherein the deciphering step includes 

establishing a number, d. as a multiplicative inverse of 

g(mod(lcm(fa i -IV (po -I) (w -I)))), and 

decoding the ciphertext word signal C to the plaintext message word signal M[, wherein 

said decoding step comprises the step of: transforming said ciphertext word signal C] 

where[by:] 

[M=C'^ (mod n)] M= (mod n\ 
[where d is a multiplicative inverse of e(mod(lcm((pi -1), (p2 -1), • • . , (Pk -1)))).] 

3. (Twice Amended) A method for [transferring a message signal Mi in a] communications ofa 
message signal M i crvptoeraphicallv processed with RSA public ke v enervation in a system 
having j terminals, [wherein] each terminal [is] being characterized by an encoding key Ei =(^, 
Ui) and a decoding key Di =(di, nO, where i=l, 2, . . . , j, and [wherein] the message signal Mi 
corresponds to a number representative of a message-to-be-received[transmitted] from the i* 
terminal, the method comprising the steps of: 
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establishing n; where iij is a composite number of the form 
[ni =Pi,i -pi^ . . . ,'Pi,k] 5i=/^kL:ei2 ■ " ^'PLk 
where k is an integer greater than 2, 
Pi.u Pi^, ' y Pi.k are distinct random prime numbers, 

ei is relatively prime to [lcm(pi,i -1, pi;2 -1, pi,k -1)] Icmfpi ^ -1^ Pl2 "l--- PUi'l^- 
di is selected from the group consisting of the class of numbers equivalent to a 
multiplicative inverse of 
ei (mod(lcm((pi,i -1), (pia -1), • • • , (PiM -1))M» 
comprising the step of:] 

receiving bv a recipient temiinal ( / = from a sender terminal (i = x^ x ^ v ) a ciphertext 

______ ^ 

signal Cv formed bv encoding a digital message word signal Mv, wherein the encoding 
includes [Ma for transmission from a first terminal (i=A) to a second terminal (i=B), said 
encoding step including the sub-step of:] 

transforming said message word signal [Ma]Mx to one or more message block word 

signals [Ma"]Mx", each block word signal [Ma"]Mx" corresponding to a number 
representative of a portion of said message word signal [Ma]^ in the range 0< 
M." <ny -l [0< Ma" <nB -1], and 

^transforming each of said message block word signals [Ma"]Mx" to a ciphertext word 

signal [Ca, Ca corresponding] Cv that corresponds to a number representative of 
an encoded form of said message block word signal [Ma"]Mx"[,] where[by:] 

[Ca^a " (mod tib)] C, = "'^ (mod/i^)iand 

deciphering the received ciphertext word signal Cx at the recipient terminal having available to it 
the k distinct random prime numbers py ^. py^ Py j ^ for establishing its dy . 

4. (Twice Amended) A [cryptographic communications] system for communications of a 

message crypto graphically processed with an RSA public kev encrvption, comprising: 

a communication [medium] channel for transmitting a ciphertext word signal C : 

[an ]encoding means coupled to said channel and adapted for transforming a transmit message 

word signal M to [a] the ciphertext word signal C using a composite number, n, where n 

is a product of the form 
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k is an integer greater than 2, and 

p^, P2 pk are distinct random prime numbers [and for transmitting C on said channel], 

where the transmit message word signal M corresponds to a number representative of [a] 
the message and 

0< M < n-1 [where n is a composite number of the form 
n=^rP2- *pk 

where k is an integer greater than 2 and pi, p2, . . . , pk are distinct prime numbers, and] 

where the ciphertext word signal C corresponds to a number representative of an 
[enciphered] encoded form of said message through a relationship of the formf and corresponds 



[a ]decoding means coupled to said channel and adapted for receiving the cipherte xt word signal 
C from said channel an d, having available to it the k distinct random prime numbers pk 



M* where M* corresponds to a number representative of a [deciphered] decoded form of 
the ciphertext word signal C [and corresponds to] through a relationship of the form 
Af=C^(mod/i) 

where d is selected from the group consisting of [the] a class of numbers equivalent to a 

multiplicative inverse of 

e(mod(lcm((pi -1), (p2 -1), ■ • • , (Pk -1)))). 

5. (Twice Amended) A [cryptographic conmiunications] system for commu nications of a 
message crvptographicallv processed with an RSA public kev encrvption, the system having a 
plurality of terminals coupled by a conmiunications channel, [including] comprising: 
a first terminal of the plurality of terminals characterized by an [associated] encoding key 

Ea =(eA, Ua) and a decoding key 'Da =(dA, ha), 

where[in] nA is a composite number of the form 

where 



to] 



Cs M^(mod n \ and 

where e jis a number relatively prime to lcm(pl -1, p2 -1, . . • , pk -1); and 




p^ Pw, for transforming the ciphertext word signal C to a receive message word signal 
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k is an integer greater than 2, 

pA,i, Pa^, . . • , PA.k are distinct random prime numbers, 

Ca is relatively prime to 

IcmipAj -1, Pa.2 -1, . . • , PA,k -1), and 

dA is selected from the group consisting of the class of numbers equivalent to a 
multiplicative inverse of 

Ca (mod(lcm((pA,i -1), (Pa^ -1), • • • , (Pam -l))))iand[,] 
[and including ]a second terminal of the plurality of terminals having r, comprising:] 

blocking means for transforming a first message^[-to-be-transmitted] which is to be 

transmitted on said communications channel from said second terminal to said 
first terminal^ into one or more transmit message word signals Mb, where each 
Mb corresponds to a number representative of said first message in the range 
0<MB<nA-l, 

encoding means coupled to said channel and adapted for transforming each transmit 

message word signal Mb to a ciphertext word signal Cb that [and for transmitting 
Cb on said channel, where Cb] corresponds to a number representative of an 
[enciphered] encoded form of said fii^ message [and corresponds to] through a 
relationship of the form 
[Cb ^Mb"^ (mod ha)] ^ M/' (mod n^), 

[wherein ]said furst terminal having [comprises:] 

decoding means coupled to said channel and adapted for receiving eachof said ciphertext 

word signals Cb from said channel and , having available to it the k distinct 
random prime numbers Pa u Pa.2, . ■ ■ , PA.k. for transforming each of said ciphertext 

word signals Cg to a receive message word signal [Mb]M'b, and 
means for transforming said receive message word signal[s] [M']M g to said firet 

message, where [M']M'b [is] corresponds to a number representative of a 

[deciphered] decoded form of Cb [and corresponds to] through a relationship of 

the form 

[Mb*^/" (mod ha)] C/^ (mod n J . 
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6. (Twice Amended) The system according to claim 5 wherein said second terminal is 
characterized by an [associated] encoding key [E^ H^By riB)]B^..^i^j^} and a decoding key 
[DB=(Db, dR)]Dn =(dR.nR\ where[: 

] nfi is a composite number of the form 

~J>bxPbx • • *'Pb^ 
where k is an integer greater than 2, 

EM^£B2a^.^:toJc [Pb,u Pb^, . . . PB,k] are distinct random prime numbers, 
Cb is relatively prime to 
\cmipB,\'lyPB.2'l, . . ■ PB.k'l\ and 

de is selected from the group consisting of [the] a class of numbers equivalent to a 
multiplicative inverse of 

cb (mod(lcm((pB,i2D5 (Psa • • • » (P^.k -!))))> 
[wherein ]said first terminal [comprises:] further having 

blocking means for transforming a second message,[-to-be-transmitted] which is to be 
transmitted on said communications channel from said first terminal to said 
second terminal, to one or more transmit message word signals Ma, where each 
Ma corresponds to a number representative of said message in the range 

[0< Ma'^ (mod ne)] O^MdSMzl 
encoding means coupled to said channel and adapted for transforming each transmit 

message word signal Ma to a ciphertext word signal Ca and for transmitting Ca 
on said channel, [ 

]where Ca corresponds to a number representative of an encoded[enciphered] 
form of said second message [and corresponds to] through a relationship of the 
form 

[Ca^Ma'^ (mod nB)] C,^M/'{modn^) 

[wherein] said second terminal [comprises;] further having 

decoding means coupled to said channel and adapted for receiving eachof said ciphertext 
word signals Ca from said channel and , having available to it the k distinct 

random prime numbers pr ^ . pa^ Pp transforming each of said ciphertext 

word signals to a receive message word signal [Ma ]M a, and 
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means for transforming said receive message word signals [Ma]M a to said second 
message, [ 

]where [M'] Ma corresponds to a number representative of a [deciphered] 
decoded form of Ca [and corresponds to] through a relationship of the form 

[Ma'^C/^ (mod ns)] M\^C/' (modn,) . 

7. (Amended) A method for [establishing cryptographic] communications of a message 
cryptographicallv processed with an RSA public key encryption, comprising the steps of: 
developing k factors of a composite number n. the k factors being distinct random prime 

numbers and k is an integer larger than two (k>2): 
providing a number e relatively prime to a lowest common multiplier of the k factors: 
providing the composite nvimber n: 

receiving a ciphertext word signal C which is formed by encoding a digital message word signal 
M to [a cipher text] the ciphertext word signal C, where said digital message word signal 
M corresponds to a number representative of [a] said message and 
0<M<n-l, 

[where n is a composite number having at least 3 whole number factors greater than one, the 
factors being distinct prime numbers, and] 

where said ciphertext word signal C corresponds to a number representative of an 

encoded form of said message [word M,] through a relationship of the form 
[wherein said encoding step comprises the step of: 

transforming said message word signal M to said ciphertext word signal C whereby] 

C= GeM^ +aeA M^'^ +. . . +^0 (mod n) 

where e and ae, ae-i, . . . , ao are numbers : and 
deciphering the received chiphertext word signal C at an intended recipient with knowledge of 
the k factors . 

8. Cancel claim 8. 

9, (Twice Amended) A [communication] system for [transferring] conununications of message 
signals [Mi] cryptographicallv processed with RSA public key encryption , comprising: 
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j terminals including first and second terminals fstationsL each of the j fstationsl terminals being 
characterized by an encoding key Ei =(ei, ni) and decoding key Di =(di, ni)[ ], where i=l,2, 
... j, [and wherein 

Mi^corresponds to a number representative of a message signal to be transmitted from the 
i*^ terminal,] each of the i terminals being adapted to transmit a particular one of the 
message signals where an i^ m essag e signal Mi is transmitted from an i^^ terminal , and 
0<Mi<niA, 

ni [is] being a composite number of the form 

[m ^pkrpu . . Pik] m = PuMl ■ ■ PLk 
where 

k is an integer greater than 2, 
P/.1, P/;2, - • . Pi.* are distinct random prime numbers, 
Ci is relatively prime to 
lcm(p/j-l,/7/,2-l, . . . Aifc-1), and 

di is selected from the group consisting of the class of numbers equivalent 

to a multiplicative inverse of 

ei (mod(lcm((pi,i -1), (pu -1), . . . , (pa -1)))); 

said[a] first terminal [one of the j terminals] including 

means for encoding a digital message word signal [Ma] Mi [for transmission] to 
be transmitted from said first terminal (i==i[A]) to [a] said second terminal 
[one of the j terminals] (i=2[B]), said encoding means [for] transforming 
said digital message word signal [Ma]Mi to a signed message word signal 
[Mas] Mi^ using a relationship of the form [, Mu corresponding to a 
number representative of an encoded form of said message word signal 
Ma, 

whereby:] 

{Mas '^Ma^ fmod /14)] M,, = Mf' (mod n, ) ^mid 

means for transmitting said signed message word signal Mu from said first terminal to said 
second terminal, wherein said second terminal includes 

means for decoding said signed message word signal Mu to said digital message word 
signal Mj^ . 
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10. (Twice Amended) The system of claim 9, [further comprising: 

means for transmitting said signal message word signal M^5 from said first terminal to said 
second terminal, and wherein said second terminal includes means for decoding said 
signed message word signal M^^ to said digital message word signal M^, said second 
terminal including: 

means for] wherein the means for decoding said signed message word signal 
includes means for transforming said signed message word signal Mas[, whereby] using a 
relationship of the form 



11. (Twice Amended) A communications system for transferring a message signal [Mi] 
cryptographicallv processed with RSA public key encryption , the conununications system 
comprising: 

j conmiunication stations including first and second stations, each of the \ communication 
stations being characterized by an encoding key Ei=(ei, nO and a.decoding key Di =(di, 
nO, where i=l, 2,. , . , j, [and wherein Mj corresponds to a number representative of a 
message signal to be transmitted from the i* terminal.] each of the i communication 
stations being adapted to transmit a particular one of the message signals where an i^^ 
message signal Mi is received from an i^^ communication station, and 
0<Mi<nr\ 

n, [is] being a composite number of the form 

=-P/,i Pa . . 'Phk 
where 

k is an integer greater than 2, 
Pi,i, Pi^, . . . ,pi.k are distinct random prime numbers, 
ei is relatively prime to lcm(pi,i -l,pi^ -1, . . . ,Pi,k-l), and 
di is selected from the group consisting of the class of numbers equivalent to a 
multiplicative inverse of 
ei (mod(lcm((pi,i -1), (pu -1), • • • , (Pa -l)))^ 
[a] said first station [one of the j communication stations] including 
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means for encoding a digital message word signal [Ma] Mi [for transmission] to be 

t ransmitted from said first station [one of the j communication stations] (i=i[A]) 
to [a] said second station [one of the j communication stations] (i=2[B]), 

means for transforming said digital message word signal [Ma] M^ to one or more 

message block word signals [Ma ] Mi", each block word signal [Ma*] Mil being a 
number representative of a portion of said message word signal [Ma ]Mi in the 
range 

0<Mi"<n7A [0< Ma <tib -1], and 
means for transforming each of said message block word signals [Ma"] Mil; to a 

ciphertext word signal using a relationship of the form [Ca , C a corresponding 
to a number representative of an encoded form of said message block word signal 
Ma", whereby:] 

[Ca ^MA'f^ fmod hb)] C, - M"/^ (modw2)iand 

means for transmitting said ciphertext word signals C i from said first station to said second 
station, wherein said second station includes 

means for deciphering said ciphertext word signals using p^ ^ , p? , ? p? . v to produce 

said message word signal M^ . 

12. (Twice Amended) The communications system of claim 1 U[ fijrther comprising: 

means for transmitting said ciphertext word signals from said first terminal to said second, and] 

wherein [said second terminal] the deciphering means includes 

means for decoding said ciphertext word signals Ci to said message block word signals 

[MA] M^" using a relationship of the form f, said second terminal including: 
means for transforming each of said ciphertext word signals Ca to one of said message 

block word signals Ma", whereby 
A^4"^/* (mod hb)] M", = C/^ (mod /i,), and 

means for transforming said message block word signals [Ma"] Mi" to said message 
word signal [Ma]Mi. 
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13. (Twice Amended) [In a] A [communications] system for communications of a message 
crvptographicallv processed with RSA public key encryption , [including] comprising: 
a first station; and 

[and] a second [communicating] station[s inter] communicatively connected to the first station 
[for communication therebetween] , 
the first [communicating] station having 

encoding means for transforming a transmit message word signal M to a ciphertext word 

signal C where the transmit message word signal M corresponds to a number 

representative of a message and 

0<M<n'l 

[where] n [is] being a composite number formed as a product of [having] at least 
3 [whole number] factors [greater than one], the at least 3 factors being distinct 
random prime nimibers, and 

where the ciphertext word signal C corresponds to a nxmiber representative of an 
[enciphered] encoded form of said message through a relationship of the form [and 
corresponds to] 

C= ae Af ^ +ae.\ M^"^ +. . . +ao (mod n) 

where e and a^, ae-i[-l], . . . , ao are numbers; and 
means for transmitting the ciphertext word signal C to the second [commimicating] 

statio n, wherein the second station includes means for deciphering the chipertext 
word signal C using the at least 3 factors to produce the message . 
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New Claims: 

14. (Amended) A method of communicatine a messaee crypto graphically processed with an 
RS A public key encryption, comprising the steps of: 

selecting a public key portion e associated with a recipient intended for receiving the message; 

developing k distinct random prime numbers, pu p?, ^ ^ . Pv. where k >3. and checking that each 
of the k distinct random prime numbers minus I. vv-l. pi-l. . . . pv-lAs relatively prime 
to the public key portion e: 

computing a composite number, n, as a product of the k distinct random prime numbers: 

receiving a ciphertext message foimed by encoding a plaintext message data M to the ciphertext 
message data C using a relationship of the form C= (mod n\ where M represents the 
message, where 0<M and where the sender knows n and the public key portion e 
but has no access to the k distinct random prime numbers, z?|. p7 pw: and 

deciphering at the recipient the received ciphertext message data C to produce the message, the 
recipient having access to the k distinct random prime numbers, vu p?. . ■ . pv. 

15. (Amended) The method according to claim 14, comprising the further step of: 
establishing a private key portion by a relationship to the public key portion e in the form of 

d^e'\mod{ip, -l) {p, -ly-'ip, -1))). 

wherein the deciphering step includes decoding the ciphertext message data C to the plaintext 
message data Musing a relationship of the form M= (mod n). 

16. (Amended) A method of communicating a message crvptographicallv processed with RSA 
public key encryption, comprising the steps of: 

selecting a pubhc key portion e: 
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developing k distinct random prime numbers, p i . where /c > 5. and ch ecking that each 

of the k distinct random prime numbers minus K p x ^-L po-l. . . . Pv-K is relatively prime 
to the public kev portion g; 

establishing a private key portion by a relationship to the public key portion e in the form of 



computing a composite number, as a product of the k distinct random prime numbers: 

receiving a ciphertext message data C representing an encoded form of a plaintext message data 
M: and 

decoding the received ciphertext message data C to the plaintext message data M using a 
relationship of the form M= (mod n\ the decoding performed by a recipient owning 
the private key portion d and having access to the k distinct random prime numbers, pu 
^1 ■ ■ Pki 

17, (Amended) The method according to claim 16, wherein the ciphertext message data C is 
formed by encoding the plaintext message data M to the ciphertext message data C using a 
relationship of the form C=M^ (mod n\ wherein 0<M <nA and wherein n and the public kev 
portion e are accessible to the sender although it has no access to the k distinct random prime 
numbers, pu p?- - • - P^- 

18. (Amended) A method of communicating a message crypto graphically processed with RSA 
public key encryption, comprising the steps of: 

selecting a public key portion e\ 

developing k distinct random prime numbers, pu p?. . . . pv^ where k>3. and checking that each 
of the k distinct random prime numbers minus 1, p^-l, p?-l, . . . Pv -K is relatively prime 
to the public key portion e: 

establishing a private key portion by a relationship to the public kev portion e of the form 
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d ^ e'' (mod((p, - 1) 1) . {p, - 1))) ; 



computing a composite number, n. as a product of the k distinct random prime numbers: 
encoding a plaintext message data Af with the private key portion d to produce a signed message 



receiving the signed message M^: and 

deciphering the signed message to produce the plaintext message data M. 

19. (Amended) The method of claim 1 8, wherein the deciphering step includes: 

decoding the signed message M^with the public key portion e to produce the plaintext message 
data Musing a relationship of the form Ms M/ (mod n\ 

20. (Amended) A method for communicating a message crypto graphically processed with RSA 
public key encryption, comprising the steps of: 

sending to a recipient a cryptographicallv processed message formed by 

assiging a number M to represent the message in plaintext message form, and 
cryptographicallv transforming the assigned number M from the plaintext message form 

to a number C that represents the message in an encoded form, wherein the 

nximber C is a function of 

the assigned number M, 

a number n that is a composite number equaling the product of at least three 

distinct random prime numbers, wherein Q<M <h-l, and 
an exponent e that is a number relatively prime to a lowest conmion multiplier of 
the at least three distinct random prime numbers, 
wherein the number n and exponent e having been obtained by the sender are associated 
with the recipient to which the message is intended: and 
receiving the cryptographicallv processed message which is decipherable by the recipient based 
on 

the nxunber n. 
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another exponent and 
the number C 

wherein the exponent J is a function of the exponent e and the at least three distinct 
random prime numbers. 

21. (Amended) The method according to claim 20, 

wherein the crypto graphically transforming step includes using a relationship of the form C^M^ 
(mod n\ 

wherein the exponent d is established based on the at least three distinct random prime numbers, 
V}.pi. . . . pk, using a relationship of the form d s (mod((/7j - 1) • - 1) • • • (p/^ - 1))) ^ 

and 

wherein the crypto graphically processed message is deciphered using a relationship of the form 
M=C^ (mod n\ 

22. (Amended) A method for communicating a message crypto graphically processed with RSA 
public key encryption, comprising the steps of: 

receiving from a sender a cryptographically processed message, in the form of a number C. 
which is decipherable by the recipient based on a number n, an exponent d. and the 
number C: and 
deciphering the cryptographically processed message, 

wherein a number M represents a plaintext form of the message, wherein the number C 
represents a cryptographically encoded form of the message and is a function of 
the number M, 

the number n that is a composite number equaling the product of at least three 
distinct random prime numbers, wherein 0<M<n-\. and 

an exponent e that is a number relatiyely prime to a lowest common multiplier of 
the at least three distinct random prime numbers, 

wherein the number n and exponent e are associated with the recipient to which 
the message is intended, and 
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wherein the exponent d is a function of the exponent e and the at least three 



distinct random prime numbers, 



23. (Amended") The method according to claim 22. 

wherein the number C is formed using a relationship of the form C= (mod n\ 

wherein the exponent d is established based on the at least three distinct random prime numbers, 
pu pi pk, using a relationship of the form d s (mod((/), - 1) • (i?2 ~ 0 ' ' ' iPk ~ 1))) ^ 

and wherein the number Mis obtained using a relationship of the form Afe (mod n\ 

24. (Amended) The method according to claim 2K 

wherein p and g are a pair of prime numbers the product of which equals n. 

wherein the deciphering the number C to derive the number M is divided into subtasks, one 

subtask for each of the k distinct random prime nxmibers, 
wherein the k distinct random prime numbers are each smaller than p and qr. 
whereby for a given length of n it takes fewer computational cycles to perform the deciphering 

relative to the number of computational cycles for performing such deciphering if the pair 

of prime numbers p and q were used instead. 

25. (Amended) The method according to claim 22. 

wherein p and are a pair of prime numbers the product of which equals 

wherein the deciphering the number C to derive the number M is divided into subtasks. one 

subtask for each of the k distinct random prime numbers, 
wherein the k distinct random prime numbers are each smaller than p and 

whereby for a given length of n it takes fewer computational cycles to perform the deciphering 
relative to the number of computational cycles for performing such deciphering if the pair of 
prime numbers v and q were used instead. 

26. (Amended) The method according to claim 20. 

wherein p and ^ are a pair of prime numbers the product of which equals and 
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wherein developing the at least three distinct random prime numbers and computing n is 
performed, including for n that is more than 600 digits long, in less time than it takes to develop 
the pair of prime numbers p and q and compute that n. 

27. (Amended) The method according to claim 22. 

wherein p and qr are a pair of prime numbers the product of which equals n, and 
wherein developing the at least three distinct random prime numbers and computing n is 
performed, including for n that is more than 600 digits long, in less time than it takes to develop 
the pair of prime numbers p and q and compute that w. 

28. (Amended) The method according to claim 14, 

wherein p and are a pair of prime numbers the product of which equals 

wherein the deciphering step is divided into sub-steps, one sub-step for each of the k distinct 

random prime numbers, 
wherein the k distinct random prime numbers are each smaller than p and 

wherebv for a given length of n it takes fewer computational cycles to perform the deciphering 
step relative to the number of computational cycles for performing such deciphering step if the 
pair of prime numbers p and q were used instead. 

29. (Amended) The method according to claim 14, 

wherein p and ^ are a pair of prime numbers the product of which equals yi, and 
wherein developing the k distinct random prime numbers and computing the composite number n 
are performed, including for n that is more than 600 digits long, in less time than it takes to 
develop the pair of prime numbers p and q and compute that n. 

30. (Amended) The method according to claim 16, 

wherein p and ^ are a pair of prime numbers the product of which equals 

wherein the decoding step is divided into sub-steps, one sub-step for each of the k distinct 

random prime numbers, 
wherein the k distinct random prime numbers are each smaller than p and 
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whereby for a given length of n it takes fewer computational cycles to perform the decoding step 
relative to the number of computational cycles for performing such decoding step if the pair of 
prime numbers p and q were used instead. 

31. (Amended! The method according to claim 16. 

wherein p and are a pair of prime numbers the product of which equals and 
wherein developing the k distinct random prime numbers and computing the composite n is 
performed, including for n that is more than 600 digits long, in less time than it takes to develop 
the pair of prime numbers p and a and compute that w. 

32. (Amended) The method according to claim 18. 

wherein p and q are a pair of prime numbers the product of which equals 

wherein the encoding step is divided into sub-steps, one sub-step for each of the k distinct 

random prime numbers, 
wherein the k distinct random prime numbers are each smaller than p and g. 
whereby for a given length of n it takes fewer computational cycles to perform the encoding step 
relative to the number of computational cycles for performing such encoding step if the pair of 
prime numbers p and q were used instead. 

33. (Amended) The method according to claim 18. 

wherein p and q are a pair of prime numbers the product of which equals n. and 
wherein developing the k distinct random prime numbers and computing the composite number n 
is performed, including for n that is more than 600 digits long, in less time than it takes to 
develop the pair of prime numbers p and a and compute that n. 

34. (Amended) The method according to claim 14, wherein a message crypto graphically 
processed by the sender with two-prime RSA public key encryption characterized by n being 
equal to a composite number computed as the product of 2 prime numbers p and q. is 
decipherable with multi-prime (k>2) RSA public key encryption characterized by the composite 
number n being computed as the product of the k distinct random prime numbers, p? pv. 
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35. (Amended) The method according to claim 9. wherein the signed message word signal Mu. 
formed from the digital message word signal M i being crypto graphically proc essed at the first 
terminal with multi-prime {k>2) RSA public key encryption which is char acterized by the 
composite number n being computed as the product of the k distinct random prime numbers. z?i. 
vo, . . . pk. is decipherable at the second terminal with two-prime RSA public key encryption 
characterized by n being equal to a composite number computed as the product of 2 prime 
numbers p and q. 

36. (Amended) The method according to claim 16, wherein a m essage crypto graphically 
processed by the sender with two-prime RSA public key encryption characte rized by n being 
equal to a composite number computed as the product of 2 prime numbers p and is 
decipherable by the decoding with multi-prime (k>2) RSA public key encryption c haracterized 
by the composite number n being computed as the product of the k distinct random prime 
numbers, pj^. j??- ■ - ■ P^- 

37. (Amended) The method according to claim 18. wherein the sign ed message M.. formed from 
the plaintext message data M being cryptographicalW processed at the sen der with multi-prime 
(k>2) RSA public key encryption which is characterized by the composite number n being 
computed as the product of the k distinct random prime numbers, v u p^. . . . r?k. is decipherable 
by the decoding at the recipient with two-prime RSA public key encryption characterized by n 
being equal to a composite number computed as the product of 2 prime numbers p and a, . 

38. (Amended) The method according to claim 20, wherein a m essage cryptographically 
processed by the sender with two-prime RSA public key encryption charac terized by n being 
equal to a composite number computed as the product of 2 prime numbers v and is 
decipherable at the recipient with multi-prime RSA public key encryption char acterized by the 
composite number n being computed as the product of the at least three d istinct random prime 
numbers. 

39. (Amended) The method according to claim 22, wherein a message cryp tographically 
processed by the sender with two-prime RSA public key encryption charac terized by n being 
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equal to a composite number computed as the product of 2 prime numbers p and is 
decipherable at the recipient with multi-prime RSA public key encryption characterized by the 
composite number n being computed as the product of the at least three distinct random prime 
numbers. 

40, (Amended) A cryptography method for local storage of data by a private key owner, 
comprising the steps of: 
selecting a public key portion e: 

developing k distinct random prime numbers, pu /?2- ■ ■ where k>3, and checking that each 
of the it: distinct random prime numbers minus L Pj-l. p?"!- ■ - • relatively prime 

to the public key portion e: 

establishing a private key portion J by a relationship to the public key portion e in the form of 

e" (mod((p, - 1) {p, - 1) - (p, - 1))) ; 

computing a composite number, as a product of the k distinct random prime numbers that are 
factors of n. where only the private key owner knows the factors ofn: and 

encoding plaintext data M to ciphertext data C for the local storage, using a relationship of the 
form C= (mod n\ where 0<M whereby the ciphertext data C is decipherable 
only by the private key owner having available to it the factors of w. 

41 . The cryptography method in accordance with claim 40, further comprising the step of: 
decoding the ciphertext data C from the local storage to the plaintext data Musing a relationship 

of the form Afe (mod n). 

42. (Amended) A cryptographic communications system, comprising: 
a plurality of stations: 

a communications mediimi: and 

a host system adapted to communicate with the plurality of stations via the communications 
medium sending a receiving messages crvptographicallv processed with an RSA public key 
encryption, the host system including 

at least one crvptosvstem configured for 

developing k distinct random prime numbers, DuPz* . . . Pv. where k>3. 
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checking that each of the k distinct random prime numbers minus 1. Pi-K P2'K . . . 
pw-l, is relatively prime to a public key portion e that is associated with the 
host system, 

computing a composite number, n. as a product of the k distinct random prime 
ntunbers, 

establishing a private key portion by a relationship to the public key portion e 
in the form of d = e"' (mod((/7, - 1) • (P2 " 0 • " (Pk " 1))) * 

in response to an encoding request from the host system, encoding a plaintext 
message data M producing therefrom a ciphertext message data C to be 
communicated via the host system, the encoding using a relationship of 
the form C= (mod n\ where 0<M^-\. 

in response to a decoding request from the host system, decoding a ciphertext 
message data C communicated via the host producing therefrom a 
plaintext message data M using a relationship of the form Af = C ^ (mod 

43. (Amended) A system for communications of a message cyptographically processed with 
RSA public key encryption, comprising: 
a bus: and 

a cryptosystem communicatively coupled to and receiving from the bus encoding and decoding 
requests, the cryptosvstem being configured for 
providing a public key portion e, 

developing k distinct random prime numbers, p?, . . . pv, where A: > 3, 

checking that each of the k distinct random prime numbers minus 1, p^-l, p?-!. . . . pv-l, 

is relatively prime to the public key portion e, 
computing a composite number, yi, as a product of the k distinct random prime numbers, 
establishing a private key portion by a relationship to the public key portion e in the 

fonnof J = e-'(mod((A -\y{p^ -!)• -(a -1))). 
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in response to an encoding request from the bus, encoding a plaintext form of a first 
message M to produce C a ciphertext form of the first message, using a 
relationship of the form (mod n\ where 0<M <n-\. and 

in response to an decoding request from the host system, decoding C\ a cip hertext form 
of a second message, to produce M a plaintext form of the second message, 
using a relationship of the form M'^ C"^ (mod n\ the first and second messages 
being distinct or one and the same. 

44. The system of claim 42. wherein the at least one crvptosvstem includes 

a plurality of exponentiators configured to operate in parallel in develop ing respective 
subtask values corresponding to the message. 

45. (Amended^ The system of claim 42. wherein the at least one crvptosvstem includes 

a processor, 

a data-address bus. 

a memory coupled to the processor via the data-address bus, 

a data encryption standard (PES) unit coupled the memory and the processor via the 
data-address bus, 

a plurality of exponentiator elements coupled to the processor via the PES unit, the 
plurality of exponentiator elements being configured to operate in parallel in 
developing respective subtask values corresponding to the message. 

46. (Amended^ The system of claim 45, wherein the memory and each of t he plurality of 
exponentiator elements has its own PES unit that crvptographical lv processes message data 
received/returned from/to the processor. 

47. (Amended) The system of claim 45, wherein the memory is part itioned into address spaces 
addressable bv the processor, including secure, insecure and ex ponentiator elements address 
spaces, and wherein the PES unit is configured to recognize t he secure and exponentiator 
elements address spaces and to automatically encode messa ge data therefrom before it is 
provided to the exponentiator elements, the PES unit being bypassed whe n the processor is 
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accessing the insecure memory address spaces, the PES unit being further configured to decode 
encoded message data received from the memory before it is provided to the processor. 

48. The system of claim 45. wherein the at least one cryptosvstem meets FIPS (Federal 
Information Processing Standard") 140-1 level 3. 

49. The system of claim 45, wherein the processor maintains in the memory the public key 
portion e and the composite number n with its factors vu Pi-^ - - - j^v ■ 

50. (Amended) A system for conmiunications of a message crypto graphically processed with 
RSA public key encryption, comprising: 

a bus: and 

a cryptosvstem receiving from the system via the bus encoding and decoding requests, the 
cryptosvstem including 

a plurality of exponentiator elements configured to develop subtask values. 

a memory, and 

a processor configured for 

receiving the encoding and decoding requests, each encoding request providing a 

plaintext message M to be encoded, 
obtaining a public key that includes an exponent e and a modulus «, a 
representation of the modulus n existing in the memory in the form of its k 
distinct random prime number factors pu pi. . . . pv. where k>3. 
constructing subtasks. one subtask for each of the k factors, to be executed by the 
exponentiator elements for producing respective ones of the subtask 

values, Cu Ci Cv, and 

forming a ciphertext message C from the subtask values C \ . Q. . . . Cv. 
wherein the ciphertext message C is decipherable using a private key that includes 
the modulus n and an exponent d which is a function of e. 
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51. (Amended) The system of claim 50 wherein each one of the subtasks Cu C?. . . . Cw is 
developed using a relationship of the fomi Q s M/' (mod p^) . where = M (mod and 

e,. = e(mod /? . - 1) , and where i=L 2, . . . k. 



52. (Amended) A system for conamunications of a message crypto graphically processed with 
RS A public key encryption, comprising: 
a bus: and 

a cryptosystem receiving from the system yia the bus encoding and decoding requests, the 
crvptosystem including 

a plurality of exponentiator elements configured to develop subtask values, 

a memory, and 

a processor configured for 



receiving the encoding and decoding requests, each encoding/decoding request 



and with or without a public/private key that includes an exponent e/d and 
a modulus n a representation of which exists in the memory in the form of 
its k distinct random prime number factors pu pg. . . . pv. where k>3. 

obtaining the public/private key from the memory if the encoding/decoding 
request is provided without the public/private key, 

constructing subtasks to be executed by the exponentiator elements for producing 
respective ones of the subtask values, Mu M?, . . . MUCu C?, . . . Cv, and 

forming the ciphertext/plaintext message C/M from the subtask values C i . Q. . . . 



53. (Amended) The system of claim 52 wherein when produced each one of the subtasks 

. . . Cv is developed using a relationship of the form C,- s M.^' (mod p.) , where C,- = C(mod p^)^ 

and g. s e(mod p^ -1) , and where i=l, 2, . . . k. 



provided with a plaintext/ciphertext message M/C to be encoded/decoded 
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54. (Amended) The system of claim 52 wherein when produced each one of the subtasks Mu M7. 
. . . Afv is developed using a relationship of the form M- = C/^' (mod ) . where 

Af . = M(mod Pj) . and d. = d (mod p^ - 1) , and where i=l. 2, . . , k. 



55. The system of claim 54. wherein the private key exponent d relates to the public key 
exponent e via d s e"^ (mod((/7, - 1) • (/?2 - 1) • * • {Pk ~ 1))) ^ 



56. (Amended") A system for communications of a message crypto graphically processed with 
RS A public key encryption, comprising: 

means for selecting a public key portion e: 

means for developing k distinct random prime numbers, pu p?. ■ . . pv. where k > 3. and for 
checking that each of the k distinct random prime numbers minus 1, P2-U . ■ . z^w-K 
is relatively prime to the public key portion e: 

means for establishing a private key portion </ by a relationship to the public key portion e in the 
form of d = e~^ (mod((j7, - 1) • (P2 " O • " (Pk " 1))) i 

means for computing a composite number, as a product of the k distinct random prime 
numbers: 

means for receiving a ciphertext message data C: and 

means for decoding the ciphertext message data C to a plaintext message data M using a 
relationship of the form M= (mod ri). 

57. The system according to claim 56, further comprising: 

means for encoding the plaintext message data M to the ciphertext message data C using a 
relationship of the form C= (mod n\ where 0<M <n-\ . 

58. (Amended) A system for communications of a message cryptographicallv processed with 
RSA public key encryption, comprising: 

means for selecting a public key portion e: 
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means for developing k distinct random prime numbers, pu p?. ■ ■ ■ pv. where k > 3. and for 
checking that each of the k distinct random prime numbers minus 1. pr-l^ ■ ■ ■ pw -L 
is relatively prime to the public key portion e: 

means for establishing a private key portion J by a relationship to the public key portion e of the 



means for computing a composite number, as a product of the k distinct random prime 
numbers: and 

means for encoding a plaintext message data M with the private key portion d to produce a 
signed message Mc using a relationship of the form Mc= (mod n\ where 0<M ^-l, 
the signed message Afc^being decipherable using the public key portion e. 

59. (Amended) The system of claim 58 further comprising the step of: 

means for decoding the signed message Mg with the public key portion e to produce the plaintext 
message data Musing a relationship of the form A/= Af/ (mod ri). 

60. (Amended) The system of claim 57, wherein the system can communicate the 
cryptographicallv processed message to another system that encodes/decodes data with RSA 
public key encryption using a modulus value equal to n independent of the k distinct prime 
numbers. 

61. (Amended) The system of claim 59, wherein the system can communicate the 
cryptographicallv processed message to another system that encodes/decodes data with RSA 
public key encryption using a modulus value equal to n independent of the k distinct prime 
numbers. 



Reexamination 90/005,733 36 



fgrmd^e-'imodiip, -l) (p, -1))); 



Collins et al. 



SV/268378.01 
09092002/1 8:29/20206. 1 26 



